Use the Add TACACS+ Server window to add TACACS+ server information in ExtremeCloud IQ Site Engine. When configured, ExtremeCloud IQ Site Engine uses the TACACS+ server to authenticate users accessing ExtremeCloud IQ Site Engine.
- Timeout Duration (2-60 sec)
- Select the amount of time (in seconds) between 2 and 60 after which the authentication attempt times out.
- Authentication Type
- Select the protocol or information exchange code used for authentication.
Valid values are:- PAP — A static username and password are used to authenticate a user.
- CHAP — A shared secret between the client and server is used to authenticate a user.
- ASCII — The username and password are transmitted in clear, unencrypted text.
- Service Name
- Enter the TACACS+ Service Name ExtremeCloud IQ Site Engine uses to authorize a user. The Service Name can include custom attributes. The Service Name entered in this field must match one of the services on the TACACS+ server for the user to authenticate successfully.
NOTE: The Service Name must exactly match the Service Name configured on the TACACS+ server: - If the Service Name on the TACACS+ server includes quotation marks (for example, "Netsight Administrators"), ensure you also include the quotation marks in the Service Name field.
Including special characters in the Service Name is supported, but avoid using (=) and whitespace ( ) together as part of the name (for example, My Service Name = A).
- The Service Name is case-sensitive. If the Service Name on the TACACS+ server uses all lowercase letters (for example, "extremecloud iq se administrators"), ensure you also use all lowercase letters in the Service Name field in ExtremeCloud IQ Site Engine.
For information on related help topics: